IT Audit Services
Independent and objective review of your IT infrastructure
Certified IT Auditors
Our IT Audit services provide an independent and objective review of IT infrastructure, control configuration, and regulatory compliance through in-depth testing and expert analysis. GraVoc’s auditors maintain a number of professional certifications including Certified Information Systems Auditor, Certified Information Security Manager, Certified Information Systems Security Professional, Certified in Risk and Information Systems Control, Microsoft Certified Professional and Certified Ethical Hacker. Our IT Audit service area expands throughout Massachusetts, Southern New Hampshire and New England.
IT Audit Services Include:
IT Audit Services
Our IT Audit service is an examination of the controls within an organization’s IT infrastructure. During the IT audit process, GraVoc Auditors evaluate the overall effectiveness of our client’s IT control environment to ensure these controls are properly configured to preserve the availability, confidentiality, and integrity of mission-critical systems and data.
The audit scope depends primarily on the size and scope of the client’s operation and the specific needs of the client. The project manager and auditors work directly with the client to ensure cost-effective and timely delivery of our auditing services.
IT General Controls Audit Service
Our IT General Controls Audit is an examination of the controls within an organization’s IT infrastructure. During the IT controls audit process, GraVoc IT Auditors collect and evaluate evidence of the client’s information systems controls, policies and procedures, and other related documentation to ensure the availability, confidentiality, and integrity of mission-critical systems and data. While the audit scope is constantly expanding and depends primarily on the size and scope of the client’s operation, GraVoc’s audit process analyzes three (3) fundamental control domains: 1. Proactive/Protective Controls 2. Detective Controls 3. Reactive/Corrective Controls. After completing the audit, GraVoc provides a report that documents significant findings.
Compliance Gap Analysis Service
The compliance review is an examination of existing controls, procedures, and policies against industry best practices and industry regulations surrounding cybersecurity and information security. GraVoc’s compliance review services help organizations determine their adherence to established state, federal, and industry guidelines.
GraVoc also provides a report identifying gaps and prioritizing areas of improvements, and providing solutions on how to bring the organization into compliance.
By the Numbers
98%
Customer Retention
500+
Clients
20+
Professional Security Certifications
1
Common Goal: YOUR SUCCESS!
Our certifications include…
CCNA Security
Cisco Certified Network Associate Security
CISM
Certified Information Security Manager
CISA
Certified Information Systems Auditor
CRISC
Certified in Risk and Information Systems Control
C|EH
Certified Ethical Hacker
CISSP
Certified Information Systems Security Professional
E|CIH
EC-Council Certified Incident Handler
MCP
Microsoft Certified Professional
GET IN TOUCH
Have a question or want to discuss our IT Audit services? Contact a GraVoc employee below by filling out the form!
Information Security News
Malicious Email Harvesting: How Do Hackers Do Things
In our second episode of How Do Hackers Do Things, GraVoc Security Consultant, Josh, shows you how hackers harvest email addresses for malicious purposes.
Cyber Fraud Alert Issued for Websites Collecting NPI
The New York State Department of Financial Services (DFS) released guidance on a cyber fraud campaign targeting websites that collect non-public information (NPI).
Shodan: How Do Hackers Do Things
In our first episode of How Do Hackers Do Things, GraVoc Security Consultant, Josh Jenkins, shows you how hackers can take advantage of Shodan; a freely available tool on the Internet that allows anyone to preform advanced recon on a target URL.
Information Technology Audit Service Area
GraVoc is located in Peabody Massachusetts, just north of Boston, and provides Information Security services including IT Audit, IT General Controls Audit and Compliance Gap Analysis to businesses and organzations in the New England area. GraVoc’s Information Security Auditors hold certifications in CCNA Security, CISM, CISA, CRISC, C|EH, CISSP, and E|CIH. Below is a list of our Massachusetts and New Hampshire IT Audit service area. GraVoc also provides IT Audit services in Connecticut, Maine, Rhode Island and Vermont but are not limited to these states.
Massachusetts IT Audit service area:
Acton, Amesbury, Andover, Arlington, Ashby, Ashland, Ayer, Bedford, Belmont, Beverly, Billerica, Boston, Boxborough, Boxford, Burlington, Cambridge, Carlisle, Chelmsford, Chelsea, Concord, Danvers, Dracut, Dunstable, East Boston, Essex, Everett, Framingham, Georgetown, Gloucester, Groton, Groveland, Hamilton, Haverhill, Holliston, Hopkinton, Hudson, Ipswich, Lawrence, Lexington, Lincoln, Littleton, Lowell, Lynn, Lynnfield, Malden, Manchester by the sea, Marblehead, Marlborough, Maynard, Medford, Melrose, Merrimac, Methuen, Middleton, Nahant, Natick, Newbury, Newburyport, Newton, North Andover, North Reading, Peabody, Pepperell, Reading, Revere, Rockport, Rowley, Salem, Salisbury, Saugus, Sherborn, Shirley, Somerville, Stoneham, Stow, South Boston, Sudbury, Swampscott, Tewksbury, Topsfield, Townsend, Tyngsborough, Wakefield, Waltham, Watertown, Wayland, Wenham, West Newbury, Westford, Weston, Wilmington, Winchester, Winthrop and Woburn.
Our Massachusetts IT Audit service area also includes: Barnstable County, Berkshire County, Bristol County, Dukes County, Franklin County, Hamden County, Hampshire County, Nantucket County, Norfolk County, Plymouth County and Worcester County.
New Hampshire IT Audit service area:
Amherst, Andover, Atkinson, Auburn, Boscawen, Bow, Bradford, Brentwood, Candia, Canterbury, Chester, Concord, Danbury, Danville, Deerfield, Derry, Dunbarton, East Kingston, Epping, Epsom, Exeter, Franklin, Fremont, Greenland, Hampstead, Hampton Falls, Hampton, Henniker, Hill, Hooksett, Hopkinton, Kensington, Kingston, Loudon, Lyndeborough, New Castle, New London, Newbury, Newfields, Newington, Newmarket, Newton, Northfield, North Hampton, Northwood, Nottingham, Pembroke, Pittsfield, Plaistow, Portsmouth, Raymond, Rye, Salem, Salisbury, Sandown, Seabrook, South Hampton, Stratham, Sutton, Warner, Webster, Wilmot and Windham.
Our New Hampshire IT Audit service area also includes: Hillsborough County, Rockingham County and Cheshire County.
GraVoc
GraVoc is a technology-consulting firm located in Peabody, Massachusetts just north of Boston. GraVoc is committed to solving business problems for customers through the development, implementation, and support of technology-based solutions.
"One Company, Many Solutions"